Due to the use of an insecure RFID technology (MIFARE Classic), ABUS proximity chip keys (RFID tokens) of the ABUS Secvest wireless alarm system can easily be cloned and used to deactivate the alarm system in an unauthorized way. Version 3.01.01 is affected.
9aa96c7e78ac0cc59dc8c9762e90be180a231028ffcc00fc5372b502ed7fcf6c
Ubuntu Security Notice 3964-1 - Marcus Brinkmann discovered that GnuPG before 2.2.8 improperly handled certain command line parameters. A remote attacker could use this to spoof the output of GnuPG and cause unsigned e-mail to appear signed. It was discovered that python-gnupg incorrectly handled the GPG passphrase. A remote attacker could send a specially crafted passphrase that would allow them to control the output of encryption and decryption operations. Various other issues were also addressed.
4032858588d1e2658d61e5efd5e46c841d62a00dde590953eebf108edf5c4102
Microsoft Windows PowerShell ISE will execute wrongly supplied code when debugging specially crafted PowerShell scripts that contain array brackets as part of the filename. This can result in ISE executing attacker supplied scripts pointed to by the filename and not the "trusted" PS file currently loaded and being viewed by a user in the host application. This undermines the integrity of PowerShell ISE allowing potential unexpected remote code execution.
0863fc7584b3c4dfd6c34bfc038de0305035af158c7ca97c8d46b0dea4ff2550
Xplico is an open source Network Forensic Analysis Tool (NFAT) that allows for data extraction from traffic captures. It supports extraction of mail from POP, IMAP, and SMTP, can extract VoIP streams, etc. This is the version that has a GUI allowing you to view photos, texts and videos contained in MMS messages.
9f9ba1ac038eedcb91c13a1879393f511e90a4f749de83ad40c57413369f9056
This archive contains all of the 204 exploits added to Packet Storm in April, 2019.
4a01cacac03d4841d5a683061be52fdaddab7c7f1fa74f1294fed9a1d5f9d072
Ubuntu Security Notice 3953-2 - USN-3953-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that PHP incorrectly handled certain exif tags in JPEG images. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
56f96a30e53cb6932aaa5af22760fd0d80cf4e09ece1a4caba1bcbd524631804
Ubuntu Security Notice 3963-1 - It was discovered that Memcached incorrectly handled certain lru command messages. A remote attacker could possibly use this issue to cause Memcached to crash, resulting in a denial of service.
a2c2e4009ccdb6056585002fef3a2abfc05a1decbb8b680211287d3ff935a0bd
Red Hat Security Advisory 2019-0879-01 - OpenStack Networking is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main function is to manage connectivity to and from virtual machines. Issues addressed include an incorrect validation of port settings.
8de82a9faffc4194551255bddd71ccc7e74b7741ac5a862470b17887bb4e62a1
Dovecot version 2.3 suffers from multiple denial of service conditions. Included in this archive is the advisory as well as patches to address the issue.
7e75b0da6da935fe42250e823a8a02e8fd65f715b1b3c902280f8223f8241b8d